🚨Breaking AMD’s Confidential Computing (again!) — Meet RMPocalypse 🚨 Thrilled to share our 2nd paper at @acm_ccs 🎉 We break AMD SEV-SNP’s guarantees—with just one write! Forge attestation & enable debug, with 100% success 👥Work with @BenedictSchluet 📄 https://t.co/YhKS2jVQIi

🔓 Heracles @acm_ccs'25: Breaking AMD’s Confidential Computing! We show that the hypervisor can read and move hardware-encrypted memory on AMD SEV-SNP. We build a chosen-plaintext oracle to leak kernel memory, auth keys, and cookies from "confidential" VMs https://t.co/upHXpLqSeA

#SysTEX wrapped up. Thanks to @MariosKogias for making co-chairing fun. Thanks to all the authors, or keynote speaker @shw3ta_shinde and participants. Great to see this friendly community advancing an important security technology for the next years.

SysTEX'25 program is out: https://t.co/CpCajnkC9h Including a keynote from Shweta Shinde @shw3ta_shinde , tools to enable CCA research, symbolic validation of enclaves, ML provenance, evaluating trust in TEEs, and many additional topics. Look forward to see you all in Venice!

No public Arm CCA hardware? No problem. Learn how #OpenCCA makes CCA research possible on $250 boards, driving open innovation in confidential computing. #CCSummit #ArmCCA @opaquesys @andrinbertschi https://t.co/3h63i156T1

It's a great pleasure to co-chair with @ovahldy the 8th edition of SysTEX collocated with @IEEEEUROSP CfP is out: https://t.co/ujtSDKdMyo Deadline: February 20th, 2025 We welcome contributions on the broad spectrum of TEEs. Spread the word and see you all in Venice!

Another milestone in our vision of sovereign smartphone Outstanding Cybersecurity Contribution award at the Cyber Defence Campus 5-year celebration to our team: Friederike Groschupp @Zauney Moritz Schneider @dn0sar @SrdjanCapkun Thanks armasuisse for the support & recognition!

Excited to share our Usenix Security 2025 paper with the #riscv & #ConfidentialComputing community! @Zauney will present Dorami: approach to protect RISC-V security monitors in TEEs like @KeystoneEnclave, joint work with Stavros Volos (Azure). Join us! https://t.co/ajQdK2CVC1

We will present eXpect @ #ICCAD2024, shortlisted for Best Paper Award. Arm AXI protocol connects hardware IPs. We checked whether various implementations enforce security critical properties: signal timing, ordering, bus clearing, etc. Spoiler: they don't! https://t.co/wvEIeCjIOH

@CSatETH (@ETH_en) is hiring a tenure-track assistant professor in Theory B: Logic, SMT/SAT, decision procedures, theorem proving, semantics, type systems, etc.; please apply by 15 January 2025! More info at:

📢 We have a faculty opening in @CSatETH Zurich in Systems for Data Science: https://t.co/3vqOa5thtj The position is open-rank (i.e., for an assistant or tenured professor). Feel free to reach out if you have questions. Looking forward to growing the ETH Systems Group! 😃

We will be presenting two papers today at @USENIXSecurity Track 3 Salon E @ 1:30pm @SuprajaSridhara Acai connects Arm CCA confidential VMs to accelerators (eg Nvidia H100) efficiently @BenedictSchluet Heckler, another Ahoi attack, breaks AMD SEV-SNP and Intel TDX with interrupts

Excellent talks on the insecurity of Confidential VMs and mitigations against attacks at the @UK_RISE Summer School by @shw3ta_shinde @ETH_en and @lucawilkeUzL.

WeSee: Using Malicious #VC Interrupts to Break AMD SEV-SNP got the Distinguished Paper award at IEEE #SP24! Blog & artifacts: https://t.co/DelKis7I4B Our talk is on May 22, Wed in Track 2, Ballroom 5 @ 1:25 PM #ahoi Congrats @BenedictSchluet @SuprajaSridhara @andrinbertschi

A highly relevant workshop, organized by our Senior Fellow @nasokan, Associate Fellow @shw3ta_shinde and @kari_kostiainen.

Apr 18 @CHelveticum workshop "Real-life impacts of security vulnerabilities" https://t.co/tr0F2fzXeZ featuring @lavados @sirdarckcat Rainer Böhme, Lucas Engl, @sbonhoeffer @hans_gersbach @anders_fogh @kavehrazavi & Mark Brands; organized w/@shw3ta_shinde and @kari_kostiainen

Confidential VMs Hacked via New Ahoi Attacks

Regarding #Heckler #ahoi attack on AMD SEV-SNP and Intel TDX: You can trigger the legacy INT 0x80 system call path at will from the "untrusted" hypervisor. 🤡 Someone please shoot the x86 architecture behind the barn. 🤣

It seems AMD SEV-SNP is having a security fluctuation. Let's look into the #WeeSee paper! #Ahoi (1/n)

Computer scientists at ETH Zurich have discovered a gap in the latest security mechanisms used by AMD and Intel chips. This affects major cloud providers including AWS and Google. https://t.co/0RMOq0z5lK #CloudSecurity #CloudServices